A Vietcombank customer lost VNĐ500 million (US$23,800) after someone hacked into her bank account and withdrew money from an ATM in the course of just one night. It happened on August 3-4 while Hoàng Thị Na Hương was sleeping. The hacker made five withdrawals of VNĐ100 million each. After waking up, Hương saw Vietcombank’s SMS messages about the transactions and account balance, but not the OTP codes. She quickly informed the bank, which blocked her ATM account immediately. A Vietcombank spokesperson said Hương had logged into her account through a fake Vietcombank website on her mobile phone on July 28, which caused her account information to be stolen. The stolen money was transferred to various Vietnamese banks and VNĐ200 million was withdrawn from an ATM in Malaysia. Luckily VNĐ300 million had remained within Vietcombank’s system, and so was saved. The lender and the victim fully co-operated with investigating authorities to quickly find the exact cause, trace the person who stole the money and focus on recovering it. The bank said that if it is determined the fault was not the client’s, it would fully protect her interests. Some banking experts have already said Vietcombank should not put all the blame on the customer since it too is culpable. So, even if Hương actually lost the account information on a bogus website, Vietcombank should be held responsible for its Internet banking, whose OTP function has proven to be problematic, and made to compensate the victim. Vietcombank’s prestige has been seriously affected….